| From: | Stefan Kaltenbrunner <stefan(at)kaltenbrunner(dot)cc> |
|---|---|
| To: | josh(at)agliodbs(dot)com |
| Cc: | pgsql-hackers(at)postgresql(dot)org, Magnus Hagander <magnus(at)hagander(dot)net>, "Henry B(dot) Hotz" <hotz(at)jpl(dot)nasa(dot)gov> |
| Subject: | Re: Fwd: [PATCHES] Preliminary GSSAPI Patches |
| Date: | 2007-05-01 20:10:56 |
| Message-ID: | 46379ED0.6060209@kaltenbrunner.cc |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Josh Berkus wrote:
> Magnus,
>
>> I'd also vote for changing the name of the "non encrypted" version to
>> just "gss" instead of "gss-np".
>
> I don't. We'll want to support GSS encryption once we have the code, so we
> should leave the namespace open to address that.
>
>> Oh, and I do think putting in GSSAPI authentication only (and not
>> encryption) is the way to go for now, since we can do encryption with
>> OpenSSL. It'll make the changes localized to just the authentication.
>
> For now, yes. In the long run, we want to provide users with other methods
> of encrypted connections than the rather flaky and
> not-available-on-every-platform OpenSSL.
I'm curious - on what platform is OpenSSL NOT available ?
Stefan
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Magnus Hagander | 2007-05-01 20:18:46 | Re: MSVC |
| Previous Message | Andrew Dunstan | 2007-05-01 20:10:07 | Re: Feature freeze progress report |